Collaborate Disseminate
I am learning how to improve email deliverability. Along the way, I’m learning about DMARC reports, SPF and DKIM. I have a friend with a small business who said I can practice with this email service which is hosted with Google Workspace… Continue reading Is my DMARC report saying legitmate emails are failing or illegitimate emails are passing?
So I’m using Active Campaign as a CRM and have configured DKIM, SPF, and a DMARC none policy. I am having one particular customer of mine that’s not able to receive my emails despite them whitelisting me. They are using mimecast. I’ve don… Continue reading How To Address Email Deliverability Problems When From Header Doesn’t Match From Envelope?
I received an email earlier today on my work email address. The email came from the same address—mine—but I didn’t send it.
It was an email claiming that he was a professional hacker who had hacked my operating system and planted harmful s… Continue reading Spoofed email sent to me from my email address with SPF/DKIM/DMARC passing
In the wake of Google’s announcement of new rules for bulk senders, Microsoft is urging Microsoft 365 email senders to implement SPF, DKIM and DMARC email authentication methods. “These Domain Name Service (DNS) email authentication records… Continue reading Microsoft 365 email senders urged to implement SPF, DKIM and DMARC
I’ve always heard about DMARC spoofing, and I would like to test it by myself since it could be an important aspect in a social engineering attack.
Doing some research I found this article, but I couldn’t manage to send a "spoofed&quo… Continue reading How to spoof a DMARC? [closed]
Despite setting up strict DMARC, SPF, and having DKIM enabled, I am still easily able to spoof the "From" address. I can easily do this with PHPMailer on my Mac and even with some free 3rd party tools like
https://emkei.cz/
http… Continue reading Still able to spoof emails with strict DMARC, SPF and DKIM enabled
I have quite a few questions about email security on my custom domains (SPF, DKIM, DMARC,… etc).
Let me start with Why this email got forwarded successfully, please allow an image for the words, an XML report you find below.
I simply… Continue reading Spoofed forwarded email? Help with analyzing of DMARC report
Why did this email get forwarded successfully? An XML report is below:
I simply cannot understand the delivery status, a transcript follows:
This email has been automatically forwarded. Despite the fact that DMARC has failed, the email w… Continue reading Spoofed forwarded email? Help with analyzing of DMARC report
I run the the email for several domains and receive the domain reports on their behalf. Google is our email provider.
enterprise.protection.outlook.com, sends aggregate reports with an envelope_to header, revealing to whom the email is be… Continue reading dmarc privacy concern with microsoft reports
Unless I don’t understand the idea behind DMARC reports, is there a way to set the dmark record so that you only receive email reports when there is a dkim or spf failure?
I’ve only recently set my out-bound mail server to add dkim headers… Continue reading How to receive DMARC reports only when there is a DKIM or SPF fail (not if both pass)? [closed]